Now user file is very simple with no special stuff, and as in bbs nothing personal
and not so serious for personal life then password is unecrypted in this of
user auth implementation.

In guture linuxpam or any other secure authentification system should be used.
(futures is same as guture).


No special characters only [a-z][A-Z][0-9].

Example:

user1 pass1
root asd123


As there is no big interest in BBS then while all this stuff will stay 
"unsecure" and "oldschool"